Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS10753.roa
File: AS10753.roa (raw, json)
Hash identifier: fXgvNQSHSjdp6leuSG5esz7RTxdXZ0385lfeo/1y/RU=
Subject key identifier: E8:96:CF:06:1A:27:5D:F5:AB:A4:FB:D8:C8:83:5E:6A:59:14:0F:E5
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 465B94DFB56D84C28E8C257F23ACADB1596BA5D3
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS10753.roa
Signing time: Mon 18 Nov 2024 13:30:53 +0000
ROA not before: Mon 18 Nov 2024 13:25:53 +0000
ROA not after: Mon 17 Nov 2025 13:30:53 +0000
asID: 10753
IP address blocks: 45.89.249.0/24 maxlen: 24
181.215.62.0/24 maxlen: 24
181.215.95.0/24 maxlen: 24
193.31.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:5b:94:df:b5:6d:84:c2:8e:8c:25:7f:23:ac:ad:b1:59:6b:a5:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Nov 18 13:25:53 2024 GMT
Not After : Nov 17 13:30:53 2025 GMT
Subject: CN=E896CF061A275DF5ABA4FBD8C8835E6A59140FE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:e0:98:5c:c2:10:b5:9e:10:9d:fe:77:42:f3:
6b:a9:35:2d:38:5b:8e:75:82:29:78:1a:5c:00:04:
d7:38:b3:77:f2:5d:c5:38:fc:14:51:21:d4:1c:40:
fa:e9:2f:cb:d0:5b:3a:14:09:8a:40:33:e4:29:45:
c5:69:e4:9a:83:01:be:5d:4a:3c:8d:ed:99:ad:95:
ff:e6:bc:41:be:60:25:3b:a0:f9:12:52:5c:98:08:
9b:04:0d:db:92:e4:0d:3a:d4:0d:72:e1:7f:d1:62:
85:25:00:43:53:d7:8a:10:1b:2e:d1:73:c0:0d:25:
db:29:72:8e:70:7a:ec:05:11:55:31:e3:d8:45:97:
23:24:e5:7d:e4:95:c5:d3:c8:8d:98:d3:be:97:9b:
14:80:a0:35:29:4a:a9:3b:3a:93:81:3c:15:70:9e:
7a:41:eb:eb:cd:e5:5e:f2:4c:21:b4:c3:86:77:e7:
2d:ae:f9:24:01:1a:77:34:15:90:8c:64:29:09:75:
98:46:a8:c9:20:77:7d:5b:38:75:1c:3b:eb:00:84:
6a:7f:07:30:ea:df:62:8c:6d:88:e5:07:57:0e:11:
df:60:2e:fc:a6:f5:37:2d:87:86:61:59:38:4f:5f:
ba:50:c2:7b:ca:11:51:93:f7:a8:ad:c8:fe:25:38:
d6:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:96:CF:06:1A:27:5D:F5:AB:A4:FB:D8:C8:83:5E:6A:59:14:0F:E5
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS10753.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.249.0/24
181.215.62.0/24
181.215.95.0/24
193.31.43.0/24
Signature Algorithm: sha256WithRSAEncryption
85:86:17:81:ac:6b:3a:db:a0:12:c6:96:2d:ea:98:8f:66:c5:
3e:ac:4b:0d:a8:3f:72:ab:25:56:4f:08:bc:22:04:6a:29:4b:
3e:e1:a7:31:b6:22:2a:88:0e:9b:a4:da:8f:36:b1:e4:cc:5c:
fb:6f:1b:91:a3:87:63:f5:b5:ab:5d:03:d9:e1:36:82:37:b2:
6f:ee:02:52:70:2f:a1:2f:71:0d:7f:11:32:d1:0a:8b:84:1e:
74:cb:4c:6f:e4:80:e8:5d:59:36:4b:8c:80:1a:f5:23:d9:56:
f2:53:ab:8a:4d:7f:6f:d7:aa:38:9a:bb:0a:4d:ed:83:0e:57:
80:0d:c3:46:c8:70:eb:d8:72:78:13:cf:33:67:7f:03:7a:2e:
61:d5:a1:c4:89:1b:29:a2:af:fd:a7:0f:3f:21:c7:d9:c2:ac:
d0:33:09:76:66:b2:43:01:3d:a4:bb:6d:5c:cf:f9:f6:b2:08:
1f:c6:8a:c9:d0:21:3f:0d:4c:3d:e6:65:5c:3a:4f:dc:bf:36:
92:6c:da:af:d6:3a:1e:d2:b2:a0:5a:77:ff:a1:35:d9:b0:fc:
27:39:e1:ca:3c:e3:6c:54:d9:df:7e:42:5e:86:50:d4:c7:3b:
60:00:15:8f:a2:95:01:69:2d:3a:70:7b:01:cd:90:96:e0:34:
30:32:56:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:44:43 2024 by rpki-client on console-fra.rpki-client.org